Cisco Systems® integrated services routers with wireless services provide a complete, secure wireless infrastructure solution for enterprise branch offices, small and medium-sized businesses (SMBs), public wireless LAN (WLAN) or Wi-Fi hotspots, and small remote offices and teleworkers. The Cisco® Integrated Services Router portfolio supports integrated WLAN connectivity, Wi-Fi hotspot services, Cisco Land Mobile Radio (LMR)-over-IP services, and wireless infrastructure services.
Product Overview
Cisco Systems is redefining best-in-class routing for the secure delivery of concurrent data, voice, video, and wireless services. The modular Cisco 1800, 2800, and 3800 series as well as the fixed-configuration Cisco 800 and 1800 series integrated services routers offer the industry's most comprehensive suite of wireless services to enable productivity enhancements for wireless enterprise branch offices, SMBs, public WLAN and Wi-Fi hotspots, small remote offices, and teleworker environments (Figure 1).
Figure 1. Cisco Integrated Services Router Portfolio with Wireless Services
The following wireless solutions can be applied to selected models of the Cisco Integrated Services Router portfolio:
• WLAN Connectivity-Integrated 802.11 WLAN access points are supported as an option with the entire portfolio of integrated services routers, including the Cisco 800 and 1800 series fixed-configuration wireless routers and the Cisco 1800, 2800, and 3800 series modular routers, each available with a built-in access point or a high-speed WAN interface card (HWIC) access-point module.
• Public WLAN Hotspot-Integrated WLAN access points, access-zone-router (AZR) services, and Service Selection Gateway (SSG) services provide a comprehensive selection of routers for Wi-Fi hotspot locations:
– Small hotspots requiring a single access point and AZR services can be served by a single integrated services router with an integrated access point (Cisco 800, 1800, 2800, and 3800 integrated services routers).
– Hotspots requiring multiple access points and AZR services or Power over Ethernet (PoE) can be supported with an integrated services router and Cisco Aironet® access points (Cisco 1800, 2800, and 3800 integrated services routers).
– Large multiprovider or distributed hotspots (for example, airports) can be supported with Cisco Aironet access points and an integrated services router with AZR capabilities and a SSG (Cisco 2800 and 3800 integrated services routers).
• LMR over IP-LMR-over-IP services are supported on selected integrated services routers (Cisco 2800 and 3800 routers) significantly expand the scope of push-to-talk radio communications to include remote-access and dispatch operations from a variety of communications devices (IP telephones, analog telephones, cellular telephones, etc.) as well as interoperability among disparate radio systems to enhance productivity and collaboration capabilities for radio users at:
– Enterprises-Corporate security and emergency response services (security guards, medical technicians), building management and repair services (mail, electrical, heating, ventilating, and air conditioning [HVAC]), fleet services (trucking, installation, repair technicians), etc.
– SMBs-Plumbers, electricians, delivery personnel, construction, etc.
– Public Safety Venues-Police, fire, medical responders, etc.
• Wireless Infrastructure Services-Integrated services routers (Cisco 2800 and 3800 series) provide enhanced WLAN survivability and mobility services with Cisco Aironet® access points located at branch offices and remote sites. The SSG helps enable customized guest access, and the Mobile IP Home Agent feature of Cisco IOS® Software helps enable mobility across WLAN and mobile (cellular) networks.
– Survivable IEEE 802.1X local authentication capability in the router allows authentication of up to 1000 wireless clients to the secure wireless network at a remote site without a separate authentication, authorization, and accounting (AAA) server or as a backup for the AAA server at headquarters.
– WLAN and wired IP telephony support with Cisco CallManager Express (CCME) and Survivable Remote Site Telephony (SRST).
– Customized guest access solutions for large enterprises are enabled with SSG and the Cisco CNS Subscriber Edge Services Manager (SESM).
– The Mobile IP Home Agent helps enable transparent mobility and application session continuity for mobile users and mobile networks when they roam across IP network boundaries and different access network types, such as WLAN and mobile (cellular) 2.5- and third-generation (3G) networks.
• Wireless LAN Controller Functionality-Integrated services routers (Cisco 2800 and 3800 series) provide wireless LAN controller functionality with the Cisco Wireless LAN Controller Network Module. The Integrated wireless LAN Controller network module provides system wide wireless LAN functions, such as creating and enforcing security policies, intrusion prevention, RF management, quality of service (QoS), and mobility.
– Zero-touch access point configuration by managing all access points as a complete wireless LAN system.
– Embedded software with Radio Resource Management (RRM) algorithms to detect and adapt to changes in the air space in real time-creating a self-configuring, self-optimizing, and self-correcting wireless LAN environment.
– Supports up to 6 Access Points with an aggregated throughput of 75 Mbps.
Features Table
Table 1 summarizes the primary wireless services supported on the integrated services routers.
Table 1. Cisco Integrated Services Router Portfolio with Wireless Services
Integrated Services Routers
Cisco 3800 Series
Cisco 2800 Series
Cisco 1800 Series
Cisco 800 Series
Model Numbers
Cisco 3845 and 3825
Cisco 2851, 2821, 2811, and 2801
Cisco 1841
Cisco 1812, 1811, 1803, 1802, and 1801
Cisco 878, 877, 876, and 871
Cisco 857 and 851
Data
X
X
X
X
X
X
Security
X
X
X
X
X
X
Wireless
X
X
X
X
X
X
WLAN Connectivity (integrated access point)
X
X
X
X
Cisco 1800W
X
Cisco 870W
X
Cisco 850W
Public WLAN Hotspot
X
X
X
X
X
X
LMR over IP
X
X
(except Cisco 2801)
Wireless Infrastructure Services
X
X
(except Cisco 2801)
Wireless LAN Controller Functionality
X
X
(except Cisco 2801)
Switching
X
X
X
X
X
X
PoE
X
X
X
X1
Voice-WLAN and Wired IP Telephony
X
X
Modularity and Upgradability
X
X
X
Advanced Integration Modules (AIMs), HWICs, Voice Interface Cards (VICs), Voice/WAN Interface Cards (VWICs), and WAN Interface Cards (WICs)
X
X
X
Network Modules for Advanced Services
X
X
(except Cisco 2801)
Power Supply Redundancy
X
Cisco 3825* and 3845
X
Cisco 2851, 2821, and 2811**
* With external redundant power supply
** Requires external midspan module and power supply
Features and Benefits
WLAN Connectivity Services-Integrated 802.11b/g and 802.11a/b/g Access Points
IEEE 802.11 Wi-Fi certified, the integrated access points for the integrated services routers deliver robust and predictable IEEE 802.11 coverage with strong radio sensitivity and superior performance. Enhanced security with support for Wi-Fi Protected Access (WPA) enterprise including authentication with 802.1X and Cisco LEAP, Protected Extensible Authentication Protocol (PEAP), or Extensible Authentication Protocol Transport Layer Security (EAP TLS); encryption with Temporal Key Integrity Protocol (TKIP), dynamic WEP, or static WEP; Simple Secure Network (SSN); and MAC address filtering. WLAN VLANs and 802.1q are also supported.
The integrated access points are optimized for small sites requiring a single access point. Discrete Cisco Aironet access points are recommended for sites requiring multiple access points. The integrated access points have removable, field-replaceable diversity antennas to support standard or customized access-point configurations (except the Cisco 850W Series, which have a single fixed antenna). Router management is supported by CiscoWorks, CiscoView, and Cisco Router and Security Device Management (SDM)-based wireless device management. A GUI-based network management for wireless interface is provided.
Integrated 802.11b/g WLAN Connectivity
The integrated 802.11b/g access point in a wireless router supports up to 54 Mbps connections. The single-band (2.4 GHz) integrated access point is supported on the Cisco 800W Series and the 802.11b/g HWIC-AP WLAN Interface Card for the modular Cisco 1800, 2800, and 3800 series integrated services routers.
Integrated 802.11a/b/g WLAN Connectivity
The integrated 802.11a/b/g access point in a wireless router supports up to 108 Mbps connections. The dual-band (simultaneous 2.4 GHz and 5 GHz) integrated access point is supported on the Cisco 1800W Series and the 802.11a/b/g HWIC-AP WLAN Interface Card module for the modular Cisco 1800, 2800, and 3800 series integrated services routers.
Table 2 summarizes the WLAN connectivity options available for the integrated services router portfolio.
Integrated 802.11b/g Access Point (2.4 GHz; 54 Mbps)
X
X
X
X
Cisco 870W
X
Cisco 850W
Modular routers with HWIC-AP WLAN interface card
Integrated 802.11a/b/g Access Point (simultaneous 2.4 and 5-GHz; 2 x 54 Mbps)
X
X
X
X
Cisco 1800W
Modular routers with HWIC-AP WLAN interface card
RP-TNC Connectors for Field-Replaceable Optional High-Gain Antennas
X
X
X
X
X
Diversity (dual) Antennas
X
X
X
X
X
Support for Discrete Cisco Aironet Access Points
X
X
X
X
X
X
Public WLAN Hotspot Service-Integrated 802.11 Access Points, AZR, PoE, and SSG Support
The Cisco integrated services routers provide a complete solution for public WLAN hotspots (or access zones) in a single device.
Integrated 802.11b/g and 802.11a/b/g WLAN Connectivity
As described earlier, Cisco integrated service routers offer an integrated 802.11b/g or 802.11a/b/g access-point option for Wi-Fi hotspot services.
AZR
AZR capability helps ensure that the hotspot network is secured for authorized public access. An AZR with an integrated 802.11 WLAN eases the deployment and configuration necessary to provide an accessible and secure public Wi-Fi hotspot. Acting as an AZR, the integrated services routers can be used with an integrated access point or can be used to extend services to discrete access points connected to 10/100BASE-T switch ports on the integrated services router. In addition, the routers can provide Inline PoE to the external access points.
The integrated services routers support the full suite of AZR features, including:
As shown in Figure 2, integrated AZR services for the integrated services routers help enable secure, manageable service at public Wi-Fi hotspots. Table 3 shows the Public WLAN hotspot features for the integrated services router portfolio.
Table 3. Integrated Services Routers for Public WLAN Hotspots
Integrated Services Routers
Cisco 3800 Series
Cisco 2800 Series
Cisco 1800 Series
Cisco 800 Series
Comments
Model Numbers
Cisco 3845 and 3825
Cisco 2851, 2821, 2811, and 2801
Cisco 1841
Cisco 1812, 1811, 1803, 1802, and 1801
Cisco 878, 877, 876, and 871
Cisco 857 and 851
Small Hotspot with Integrated Access Point and AZR
X
X
X
X
Cisco 1800W
X
Cisco 870W
Modular routers with HWIC-AP WLAN Interface Card
Hotspots with Cisco Aironet Access Points and AZR
X
X
X
X
X
Also with Cisco 3700, Cisco 2691 Multiservice Platform, and Cisco 2600XM, 1700, and 830
PoE Ports for Cisco Aironet Access Points
X
X
X
X*
Also with Cisco 3700, 2691, and 2600XM
SSG and AZR Services for Large Multiprovider or Distributed Hotspots
X
X
(except Cisco 2801)
Also with Cisco 3700, 2691, and 2651XM
* Requires external midspan module and power supply
Ethernet Switch and PoE Support
For sites with discrete 802.11 access points-such as Cisco Aironet access points-the integrated services routers provide integrated IEEE 802.3af PoE to power the access points, eliminating the need for separate cabling and power infrastructure (Table 4).
Table 4. Integrated Services Routers with Ethernet Switch and Inline Power over Ethernet
Integrated 10/100 Fast Ethernet Ports (without PoE)
Cisco 2811-2
Cisco 2801-2
2
2
Switch Ports with Optional IEEE 802.3af PoE (to power discrete Cisco Aironet Access Points, IP Phones, etc.)
Cisco
3845-72
Cisco
3825-52
Cisco 2851-44
Cisco 2821-24
Cisco 2811-24
Cisco 2801-16
8
8*
4
0
(4 without PoE)
Requires PoE-capable power supply
Support for Cisco 4-Port 10/100BASE-T Fast Ethernet Switch HWIC (HWIC-4ESW) with PoE
X
X
X
(no PoE)
Support for Cisco 9-Port Doublewide 10/100BASE-T Ethernet Switch HWIC
(HWIC-D-9ESW) with PoE
X
X
Support for Ethernet Switch Network Modules (NM-ESWs) with PoE
X
X
(except Cisco 2801)
16-, 24-, 36-, and 48-port modules
Power Supply Redundancy
X
Cisco 3825** and 3845
X
Cisco 2851**, 2821**, and 2811*
* Requires external midspan module and power supply
** With external redundant power supply
Service Selection Gateway
Cisco IOS Software-based SSG services provide subscriber authentication, service selection, service connection, and accounting capabilities in conjunction with the Cisco CNS SESM, a software toolkit that resides on a Windows, UNIX, or Linux server (Figure 3). Integrated services routers with SSG services can support up to 1000 users and can provide an ideal system for large, multiservice provider hotspots (for example, airports) and distributed public WLAN network deployments:
• SSG can authenticate and authorize subscribers to access public (or enterprise) WLAN services.
• In conjunction with a billing server, SSG can provide per-subscriber, per-service billing in both post- and prepaid billing modes.
• In conjunction with SESM, SSG can provide a Web portal for subscriber authentication and self-subscription, as well as service provider branding.
• SSG provides open-garden and walled-garden services for controlled access of information to subscribers.
Figure 3. Service Selection Gateway Helps Enable Individualized Subscriber Services for Service Providers and Enterprises
The integrated services routers with built-in 802.11 access points, AZR services, PoE, and SSG services comprise the industry's most comprehensive portfolio of Wi-Fi hotspot routers.
LMR-over-IP Services-Push-to-Talk Radio Interoperability
Push-to-talk radios-otherwise known as LMR systems-are used by companies, local governments, and other organizations to meet a wide range of communication requirements, including coordination of people and materials, important safety and security needs, and quick response in times of emergency. LMR systems provide high reliability, privacy, and local control, but are isolated and lack the ability to interoperate with other LMR systems and other types of communications devices. LMR over IP preserves the advantages of LMR systems while significantly expanding the scope of communications to include remote-access and dispatch operations from a variety of communications devices as well as interoperability among disparate radio systems.
Cisco integrated services routers (Table 5) act as LMR "gateways" to the IP network. The router takes advantage of standard ear-and-mouth (E&M) interfaces with LMR-specific software capabilities. These gateways link to existing LMR systems and make the critical adaptation of LMR audio and signaling to IP. The standards-based IP network that interconnects the LMR gateways provides the intelligent services necessary for real-time, point-to-multipoint traffic. The flexible, cost-effective solution helps enable multiple LMR systems to be joined together temporarily or permanently. The scalable, distributed architecture can support just a few to hundreds or thousands of users over unlimited distances across a public or private network. Server-based applications manage the LMR channels, and include features such as per-user access, distribution to PC and other clients, and unplanned or statically defined conferencing for cross-agency interoperability.
LMR over IP has three primary applications (see Figure 4):
• IP-Enabled Transport-The LMR gateway is used to connect the LMR system to the IP network in a point-to-point or point-to-multipoint configuration. This allows users to take advantage of IP infrastructure and eliminate dedicated-leased-line recurring charges.
• Remote Monitor and Dispatch from Phones and Other Devices-This application allows users to monitor and talk to one or multiple radio channels that are connected to an IP network, allowing them to access their radio system from any location with a network connection or telephone through a variety of clients-IP phone, PC, basic telephone service phone, or mobile phone.
• Multiagency Interoperability-This application provides the ability to "bridge" different radio systems together.
Figure 4. LMR over IP-Interoperability with Push-to-Talk Radios
Table 5. Integrated Services Router for LMR over IP
Integrated Services Routers
Cisco 3800 Series
Cisco 2800 Series
Comments
Model Numbers
Cisco 3845 and 3825
Cisco 2851, 2821, 2811, and 2801
IP-Enabled Transport of Radio Traffic
X
X
(except Cisco 2801)
Also with Cisco 3700, 2691, and 2600XM
Remote Monitor and Dispatch from IP Telephones, Analog or Mobile Phones, etc.
X
X
(except Cisco 2801)
Also with Cisco 3700, 2691, and 2600XM
Multiagency (multiradio system) Interoperability
X
X
(except Cisco 2801)
Also with Cisco 3700, 2691, and 2600XM
Wireless Infrastructure Services-Survivability, Telephony, and Mobility
Survivable Local Authentication
The integrated services routers provide backup authentication services for remote or branch-office WLANs during WAN link or RADIUS server failures. With this service, the integrated services router acts as a local authentication server to authenticate wireless clients when the AAA server is not available to enhance the survivability of the remote site. Up to 1000 user accounts can be configured in the local Cisco LEAP authentication database at the integrated services router (each account includes one username and password). (Refer to Figure 5.)
Figure 5. IEEE 802.1X Local Authentication Service for up to 1000 User Accounts
WLAN and Wired IP Telephony with CCME and SRST
The integrated services routers provide wired and WLAN IP Communications support, including support for the Cisco 7920 WLAN IP telephone. With CCME, the integrated services router can provide key system and private branch exchange (PBX) functionality for the wired and WLAN IP telephones. When a centralized Cisco CallManager is used, the integrated services router with SRST ensures that the telephony service is uninterrupted during WAN outages. (Refer to Figure 6.)
Figure 6. Wired and WLAN IP Telephony Support with CCME or SRST
Transparent Mobility for IP Networks Crossing and Media Type Roaming
